$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39322e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39322e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: HIAVUx6ij09H4kiiZ/OJGBRVevXktqzOjuX4vjeRYfI= Subject key identifier: B8:20:14:C9:D3:C9:A9:09:18:61:12:F4:67:30:F6:54:9D:5D:AA:0E Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 5B6D2CCEF59A79566307AA2EE712C79655CEADAB Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39322e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:02 +0000 ROA not before: Tue 10 Sep 2024 03:55:02 +0000 ROA not after: Tue 09 Sep 2025 04:00:02 +0000 asID: 23695 IP address blocks: 202.173.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 06:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:6d:2c:ce:f5:9a:79:56:63:07:aa:2e:e7:12:c7:96:55:ce:ad:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:02 2024 GMT Not After : Sep 9 04:00:02 2025 GMT Subject: CN=B82014C9D3C9A909186112F46730F6549D5DAA0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:82:6e:02:d0:5b:00:32:3e:23:ab:f7:bf:f6: af:35:8e:98:49:40:f9:fc:fd:8c:1b:1d:d6:64:f0: 71:06:a2:c2:25:b9:c6:56:a0:04:25:5f:be:33:7d: 81:52:e3:e6:97:c5:e7:4c:a3:a3:a4:a2:70:80:cb: 98:a2:11:ec:61:47:bf:09:44:d1:2a:a2:3a:96:36: 27:c1:a5:04:38:58:e2:f4:1c:fc:12:9b:03:31:20: 18:50:24:d4:ef:b1:16:bc:bb:7f:a6:b5:eb:89:c7: c5:a8:97:4a:d2:93:d3:a2:37:73:42:48:b7:ba:60: 4a:24:0d:bd:7d:09:80:7f:c7:6e:9d:39:e2:84:6e: 91:e1:b6:db:de:43:cf:2c:42:cb:17:be:df:4e:80: 17:f0:08:bb:16:4e:b0:a1:0c:bb:4a:dd:a6:34:67: d2:e3:e7:31:1a:f9:80:75:24:51:54:1f:dd:37:55: d2:7b:d7:b3:5e:61:d7:f6:4a:2b:db:37:43:85:e1: e8:dc:b1:05:20:fe:4f:8f:08:82:9f:ac:2b:41:c8: b1:5c:2e:70:0f:3f:92:e4:f8:9a:72:ae:8b:f2:ff: ed:c6:51:68:4e:ec:73:72:db:d5:40:9c:bf:82:36: 85:86:0b:c8:dc:9b:d1:e8:f1:87:19:e2:04:47:fd: 94:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:20:14:C9:D3:C9:A9:09:18:61:12:F4:67:30:F6:54:9D:5D:AA:0E X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39322e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.92.0/24 Signature Algorithm: sha256WithRSAEncryption 67:aa:85:13:4d:ee:16:43:63:4a:db:d1:bf:0d:cb:1e:62:3a: 2e:51:cd:cc:a0:b3:7a:50:5b:7c:cf:65:98:80:6e:c9:37:dd: 2d:1e:17:60:45:48:cf:62:9c:f7:66:54:17:91:17:b0:77:d6: f7:67:c7:47:93:98:3a:f4:58:fe:00:b7:5f:82:b9:25:09:81: b3:9b:20:e8:6f:c4:bb:5c:83:4b:d4:26:09:a4:a6:1c:14:c0: 95:18:ab:4a:6a:93:e2:dc:00:db:86:c1:14:3d:a8:a9:1b:14: 48:a2:53:f6:02:f3:67:1e:7b:6d:31:cc:0d:2c:de:72:03:b4: f6:43:7f:79:72:27:0c:0e:37:b4:91:85:e0:e9:8a:83:ac:f2: 2e:d1:88:fa:83:26:b0:00:9c:18:32:5e:42:7d:ec:cd:63:ae: 03:4e:75:0b:b9:7d:c1:80:b6:3b:3c:88:bd:61:37:57:33:2c: 96:61:7d:d1:0f:b2:cb:9b:7f:50:56:7b:95:2b:ae:16:11:5c: 08:5c:00:0b:7e:cb:99:8e:d9:23:4e:19:1e:bc:e3:cf:c0:11: 4e:44:69:44:f9:40:2b:22:6c:a7:fa:1d:e8:7d:0d:ba:31:96: d8:9a:a8:8c:af:59:45:a8:fa:4b:76:87:7d:f8:a5:41:52:f9: 26:43:79:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW20szvWaeVZjB6ou5xLHllXOraswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDJaFw0yNTA5MDkwNDAwMDJaMDMxMTAvBgNV BAMTKEI4MjAxNEM5RDNDOUE5MDkxODYxMTJGNDY3MzBGNjU0OUQ1REFBMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHgm4C0FsAMj4jq/e/9q81jphJ QPn8/YwbHdZk8HEGosIlucZWoAQlX74zfYFS4+aXxedMo6OkonCAy5iiEexhR78J RNEqojqWNifBpQQ4WOL0HPwSmwMxIBhQJNTvsRa8u3+mteuJx8Wol0rSk9OiN3NC SLe6YEokDb19CYB/x26dOeKEbpHhttveQ88sQssXvt9OgBfwCLsWTrChDLtK3aY0 Z9Lj5zEa+YB1JFFUH903VdJ717NeYdf2SivbN0OF4ejcsQUg/k+PCIKfrCtByLFc LnAPP5Lk+Jpyrovy/+3GUWhO7HNy29VAnL+CNoWGC8jcm9Ho8YcZ4gRH/ZSxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuCAUydPJqQkYYRL0ZzD2VJ1dqg4wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtXDANBgkqhkiG 9w0BAQsFAAOCAQEAZ6qFE03uFkNjStvRvw3LHmI6LlHNzKCzelBbfM9lmIBuyTfd LR4XYEVIz2Kc92ZUF5EXsHfW92fHR5OYOvRY/gC3X4K5JQmBs5sg6G/Eu1yDS9Qm CaSmHBTAlRirSmqT4twA24bBFD2oqRsUSKJT9gLzZx57bTHMDSzecgO09kN/eXIn DA43tJGF4OmKg6zyLtGI+oMmsACcGDJeQn3szWOuA051C7l9wYC2OzyIvWE3VzMs lmF90Q+yy5t/UFZ7lSuuFhFcCFwAC37LmY7ZI04ZHrzjz8ARTkRpRPlAKyJsp/od 6H0NujGW2JqojK9ZRaj6S3aHffilQVL5JkN5OQ== -----END CERTIFICATE-----Generated at Thu Nov 28 03:43:12 2024 by rpki-client on console-fra.rpki-client.org